HAN A.I CyberSecurity Scoring
HAN
Company Information
Website:http://hpe.com/networking
Employees number:5,155
Number of followers:264,363
NAICS:5415
Industry Type:IT Services and IT Consulting
Homepage:hpe.com
HAN Risk Score (AI oriented)
Between 750 and 799
HANIT Services and IT Consulting
Updated:
10/04/2026
10/04/2026
750/1000
Fair
Baa
HAN Global Score (TPRM)
xxxx
HANIT Services and IT Consulting
Score locked

HANFair
Current Score
750Baa (FAIR)
01000
2 incidents
-5 avg impact
Incident timeline with MITRE ATT&CK tactics, techniques, and mitigations.
JULY 2026
752
JUNE 2026
752
MAY 2026
751
APRIL 2026
755
Vulnerability
10 Apr 2026 • HAN
HPE Aruba Networking: HPE Aruba Private 5G Platform Vulnerability Enables Credential Theft Attacks
HPE Aruba Private 5G Core Vulnerability Exposes Admin Credentials via Phishing-Style Attack
750
CRITICAL-5
ARU1775831194
HPE Aruba Private 5G Core Vulnerability Exposes Admin Credentials via Phishing-Style Attack
A critical vulnerability in HPE Aruba Networking’s Private 5G Core On-Prem platform, tracked as CVE-2026-23818, has been disclosed, enabling attackers to steal administrative credentials through a sophisticated phishing-style exploit. The flaw, detailed in HPE security bulletin HPESBNW05032EN_US, affects the platform’s graphical user interface (GUI) and stems from an open redirect vulnerability in the login workflow.
The issue arises from inadequate sanitization of redirect parameters, allowing threat actors to manipulate post-authentication navigation. Attackers exploit this by crafting malicious URLs that appear legitimate, tricking users typically network administrators into clicking them. Upon interaction, the victim is redirected to an attacker-controlled server hosting a fake login page designed to mimic the authentic Aruba interface. Unsuspecting users re-enter their credentials, which are then captured before being seamlessly redirected back to the real login page, making the attack difficult to detect.
The impact of CVE-2026-23818 is severe for enterprises relying on private 5G infrastructure. Compromised credentials could grant attackers unauthorized access to network configurations, enable interception or manipulation of sensitive communications, disrupt services, or facilitate lateral movement within corporate environments. Since the attack relies on social engineering rather than malware, traditional endpoint security tools may fail to detect it.
HPE has released patches to address the vulnerability, urging organizations to update affected systems immediately. The flaw underscores the growing threat to user-facing interfaces in private 5G deployments, where attackers increasingly target authentication workflows to bypass security controls.
INCIDENT DETAILS -
TYPE
IMPACT
DATA BREACH
REFERENCES
MARCH 2026
754
FEBRUARY 2026
754
JANUARY 2026
754
DECEMBER 2025
753
NOVEMBER 2025
753
OCTOBER 2025
752
SEPTEMBER 2025
752
AUGUST 2025
751
NOVEMBER 2021
772
Breach
01 Nov 2021 • HAN
Aruba, a Hewlett Packard Enterprise company
Aruba Central Data Breach
717
CRITICAL-55
ARU826111122
Aruba Central network monitoring platforms suffered from a data breach incident that allowed a threat actor to access collected data about monitored devices and their locations.
The exposed information contained two datasets, one for network analytics and the other for Aruba Central's 'Contract Tracing' feature.
"One dataset ("network analytics") includes network telemetry information about Wi-Fi client devices connected to customer Wi-Fi networks for the majority of Aruba Central customers.
Another dataset called "contact tracing" comprised location-specific information on Wi-Fi client devices, such as which devices were close to other Wi-Fi client devices.
The compromised information includes MAC addresses, IP addresses, device operating system type and hostname, and some usernames. The contact tracing data also included users’ Access Point (AP) name, proximity, and duration of time connected to that AP.
They said it's not necessary to change passwords, change encryption keys, or modify your network setup because security-sensitive data was not compromised.
In order to stop reoccurring problems, HPE said they are modifying how they safeguard and keep access keys.
INCIDENT DETAILS -
TYPE
IMPACT
DATA BREACH
REFERENCES
Frequently Asked Questions
?
What is the current A.I Rankiteo Cyber Score for HAN ??
What was HAN's A.I Rankiteo Cyber Score in June 2026 ??
What was HAN's A.I Rankiteo Cyber Score in May 2026 ??
What was HAN's A.I Rankiteo Cyber Score in April 2026 ??
What was HAN's A.I Rankiteo Cyber Score in March 2026 ??
What was HAN's A.I Rankiteo Cyber Score in February 2026 ??
What was HAN's A.I Rankiteo Cyber Score in January 2026 ??
What was HAN's A.I Rankiteo Cyber Score in December 2025 ??
What was HAN's A.I Rankiteo Cyber Score in November 2025 ??
What was HAN's A.I Rankiteo Cyber Score in October 2025 ??
What was HAN's A.I Rankiteo Cyber Score in September 2025 ??
What was HAN's A.I Rankiteo Cyber Score in August 2025 ??
What is the average per-incident point impact on HAN's A.I Rankiteo Cyber Score over the past 12 months ??
Where can I access detailed records of all cyber incidents associated with HAN ??
Where can I find a summary of the A.I Rankiteo Risk Scoring methodology ??
Where can I view HAN's profile page on Rankiteo ??
How accurate is the A.I Rankiteo Risk Scoring methodology ?